Cross-Site Scripting Vulnerability in IBM Tivoli Monitoring
CVE-2013-0576

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Monitoring
Vendor: CVE Published:; 28 May 2013

Summary

The Tivoli Enterprise Portal browser client in IBM Tivoli Monitoring is susceptible to a cross-site scripting (XSS) vulnerability. This allows remote attackers to inject arbitrary web scripts or HTML code through unspecified vectors, potentially compromising user data and system integrity. The vulnerability affects multiple versions of the product, enabling attackers to execute unauthorized scripts within the user's browser context.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/83328

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg1IV32812

vendor-advisoryx_refsource_AIXAPAR

http://www-01.ibm.com/support/docview.wss?uid=swg21634920

x_refsource_CONFIRM

Timeline

Vulnerability published
May 28, 2013
Vulnerability Reserved
Dec 16, 2012